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Utimaco Safeware 

Celebrating 25 Years in the IT security business 






► Founded in 1983 

► Listed on the German Stock 
Exchange 

► €59.2 million (fiscal year 07/08) 

► 300+ employees 

in offices worldwide 

► Headquarters in Germany 
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► 12 subsidiaries and established 
distributor and partner network 
around 



♦ Offices 

♦ Reseller/Distributors 



► Since Sept 2009 part of the Sophos Group 
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Utimaco LIMS™ 

Competence in Lawful Interception 



► Utimaco has been providing LI solutions since 1994 

► Worldwide operations: more than 140 installations in 60 
countries 

► LI systems for 10 thousand to 50 million subscribers, 
from 100 to 10,000 targets 

► Strong partnerships with many of the leading telecom 
infrastructure vendors 

► Compliant to international LI standards of ETSI, 3GPP, 
ANSI/ATIS, CableLabs 

► Conform to numerous national telecommunication laws 
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Utimaco DRS 

Data Retention vs. Lawful Interception 




► Complementary means to assist law enforcement and anti- 
terrorism 

► Technically many similarities 

n 



© Utimaco Safeware AG 2009 



utimaco 

safe w are 

Telecom Data Retention 

a quick recap 

What? 

► Storage of subscriber traffic related data (CDRs) and subscriber data for 6-24 months, 
depending on country regulation 

► Data that is generated or processed in connection with the provisioning of telecom services 

► For telephony (fixed, mobil, VoIP), messaging, e-mail, Internet access 

► However no content of communication 

► Delivery of data upon lawful authorization without undue delay 

Why? 

► Support LEAs in investigations and prosecutions related to serious crime. 

Objectives: 

♦ Trace (locate) 

♦ Identify (links, social networks) 

♦ Evidence 

References 

► National laws and regulations 

► EU Directive 2006/24/EC 

► ETSI standards 

♦ TS 102 656 (LEA requirements) 

♦ TS 102 657 (Retained data handover interface) 
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DR Reference Model 

by ETSI 




CSP 



Requesting authority 




Source: ETSI TS 102 657 



CSP = Communications Service Provider 
HI = Handover Interface 
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What (some) operators do ... 

to fulfill the DR obligations 

► Extend their CDR data warehouse (Bl system) 

♦ To cover new data 

♦ To handle LEA requests 
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What these operators face . . . 



► Missing data 

♦ e.g. e-mail, IP data, location information, incoming calls, 
unsuccessful calls, ... 

► High investments 

♦ Customized software adaptations 

♦ More storage 

♦ More servers 

► High operational costs 

♦ More personnel due to little automation for request processing 

► Security threads 

♦ No segregation between data for different purposes 

♦ Insufficient protection against misuse 

♦ Penalties and bad publicity 
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What operators should consider ... 



► Use of a purpose-built system 

♦ Secure access and strong misuse protection 

♦ Automated and assisted handling of LEA requests 

♦ Smooth integration into existing network 

♦ Inexpensive 

♦ Charging capabilities 

► Outsourcing opportunities 

♦ Operation of a DR system 

♦ Handling LEA requests (incl. billing) 
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Utimaco DRS 

a carrier grade data retention solution 



Purpose-built system for compliance with the EU DR Directive (and 
national implementations of it) 



Key Features 

Collects communications data (CDR, IPDR) and subscriber data 
from any telecommunications network 

Retains large amounts of data in a powerful and secure data 
warehouse 

Provides very fast search and analytics in billions of data records 

Automates request processing and delivers data to authorized 
agencies by fax, e-mail, or secure IP interfaces 
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Utimaco DRS 

functional model 



Telecom Service 
Provider 
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Network Nodes 



Utimaco Data Retention Suite 
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Utimaco DRS 

system architecture 



Operation 
& Administration 



Utimaco Data Retention Suite 
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DRS Management Server 



Workflow Management 
Webserver 
System Monitor 



ETSI Interface 
Email Interface 
Fax Interface 



DRS Backend Server 

Warrant, User, Node, Authoritiy, 
System Management 



Data 
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Data Integration 
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Utimaco DRS 

backend components 

► DRS Collection Devices 

♦ import and mediate data from various sources at Gbit speed 

♦ easily customizable (interfaces, protocols, data formats) 

♦ scale horizontally by adding servers 

♦ integrated error detection, buffering 

♦ optional redundancy 

► DRS backend Server 

♦ Encapsulates the core business logic of DRS 

• Warrant management & Reporting 

• User management 

• Authority management 

• Node management 

• Logging 

• System administration and alarm monitoring 

♦ High-availability (redundancy concepts) 

♦ Highly protected (OS hardening, encryption, ACL, ...) 
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Utimaco DRS 

backend components 

► DRS Collection Devices 

♦ import and mediate data from various sources at Gbit speed 

♦ reduce data to what is needed by law 

♦ easily customizable (interfaces, protocols, data formats) 

♦ scale horizontally by adding servers 

♦ integrated error detection, buffering 

♦ optional redundancy 

► DRS backend Server 

♦ Encapsulates the core business logic of DRS 

• Warrant management & Reporting 

• User management 

• Authority management 

• Node management 

• Logging 

• System administration and alarm monitoring 

♦ High-availability (redundancy concepts) 

♦ Highly protected (OS hardening, encryption, ACL, ...) 
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data warehouse 
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► Optimized for fast search and analytics (not for transactions) 

► Columnar storage 

♦ One data field = one column = one data type 

♦ typical compression rate between 40% - 80% 

(depending on cardinality and data type) 

♦ specialized indixes per data type (per column) 

► Results in less disk I/O for queries 

► provides much faster search times than traditional databases 

► Designed for 1TB to hundreds of TB 

► low-cost disks with RAID-5 storage 

► 3 Gb/s SAS 10 modules 
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Utimaco DRS 

front end components 



► DRS Management Server 

♦ Web user interface 

♦ Predefined and customizable workflows and reports 

♦ Multi-user system with granular rights management 

♦ Secure access via https 

♦ Customizable handover interfaces and report formats 

♦ Electronic handover interfaces: 

• Fax server integration 

• E-mail server 

• ETSI RDHI 
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Utimaco DRS 

Highlights 



► Seamless integration into existing network infrastructures 

♦ Multi -service, multi-vendor data import 

♦ Online database access 

♦ Easily customizable and extensible at predictable costs 

► Multi-tenancy 

♦ Supports various business models, from single operator, MVNO, hosted 
service models, and others 

♦ Granular rights management to segregate between users, CSPs, 
authorities 

► High performance and capacity 

♦ Simultaneous load of massive data (>1 billion records per day) 

♦ Average query response within seconds (<5 sec for 37 billion records) 

♦ Scalable from 1 TB to 1000TB storage capacity 
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Utimaco DRS 

Highlights 

► Automated request processing 

♦ Electronic interfaces for receive&send 

♦ Warrant archive 

♦ Predefined queries & reports 

► High-availability 

♦ Clustered server architecture 

♦ Hardware redundancy 

♦ RAID-5 

♦ Real-time system monitor 

► Strong Security 

♦ Granular user rights management 

♦ Encrypted storage and handover 

♦ Data integrity protection 

♦ Full audit trails 
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Utimaco DRS 

Highlights 
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► Cost-efficient 

♦ Standard X64 hardware 

♦ Low-costs disk storage (SATA) 

♦ High data compression rates (40-80%) 

► Standards based 

♦ Supports EU Directive 2006/EC/24 

♦ Complies with ETSI TS 1 02 656, TS 1 02 657 
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Outsourcing 

DR as managed service 

► Utimaco DRS operated by a service provider 

♦ Secure retention of data 

♦ Request handling (communication with LEA) 

♦ Charging to LEA 

♦ Combination with LI possible (lawful interception) 

► Service Partners 

♦ Nokia Siemens Networks (Germany) 

♦ Quante Networks (Germany) 

♦ Other (on request) 
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Utimaco DRS - a carrier grade data retention solution 

summary 



► integrates seamlessly with existing network 
infrastructure 

► integrates with business processes 

► respects and supports security policies 

► automates request processing 

► automates data collection 

► is highly resilient against common failures by 
redundancy 

► scales from millions to billions of records per day 

► is extensible at predictable costs 

► is cost-efficient 



Benefits 
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Demo please! 



► If you want to learn more about carrier grade Data Retention solutions, 
please visit us at booth 19 (Thursday to Friday) 
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thank you! 

! 

■ 

dekuji! 

gracias! 

Bbi! 
merci! 
tacka dig! 
grazie! 

oaq euxapicJTOujJt! 
danke! 

www.utimaco.com 
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